I did all procedure. but iwant to know i have direct ip on my linux box so what i need to change in that script please tell me.

and one more if we configure nat firewall must be up or not without fire wall can it is possible. because i configure high firewall on default rules but i stopped service /etc/init.d/iptables stop command. please tell me in details

That script especially works for devices having dynamic ips.. , it will still work for you, just change ppp0 with ethX which is directly connected to internet.

Without firewall it will work..Actually NAT do packet movement in and out without knowing who is doing it.. so it can be security breach. So i suggested to use firewall.. but with default firewall it will not work..either u install firestarter and do NAT also using that. .. or use premade firewall script available easily on internet.

Hello pals,Great tutorial, but I'm also concerned about security, so I'd like to know if you can give us some more specific details how to get a firewall installed and configured.Where can we get your firewall script?How to install it and configure it so it'll work with this NAT setup?Have you tested other firewalls such as APF?http://www.r-fx.org/apf.php

I would need a script for iptables with some configuration option such that I should be able to make changes in the iptables script for allowing or disallowing requests made by specifc clients on specifid ports Suppose My cleints have their default gateway set as my linux box

What I would like is block/disallow requests made by clients on ports80 while allow the requests made on port 25 ,110

But What I would like to have is some granularity ieIf the requests come from specific IP addresses I should have the option of allowing them directly thru port 80

Would anybody please give me step by step process assumimg that I am starting from scratchI also remember I saw a simliar script in this forum which almost does the same but I can't locate where it is now

Basically this thread is about discussing the NAT in linux. I request you to start a new thread in General networking section about this firewall stuff. The thing you have asked is simple but will take little time sO I think it will be better to discuss it separately to give it full preference. BTW.. you are right. I have already given so many solutions for it that you can find answer already posted in forum so better try to find once more else I m here always to solve the problems which I can solve.